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REMARKS 

Claims 1-3, 12, 13, 15 and 16 are pending in the application and stand rejected. 

Rejection under 35 U.S.C §102 

Claims 1-3, 12, 13, 15 and 16 stand rejected under 35 U.S.C. 102(e) as being anticipated 
by U.S. Patent No. 6,854,016 to ICraenzel et al. In particular, the Examiner opines that Kraenzel 
discloses the claimed arranging a confined run time environment which is assigned a second 
communication port and socket by disclosing "wherein a Service Manager user Interface is used 
with Domino Offline Services to provide a platform for services and application processes from 
server to run in a client, communication established through a secure socket layer that assigns 
specific secure sockets to communication to load fi-om database to cUent browser" and teaches 
that the confined run time environment is provided with restricted access to at least one profile 
file that is located on the user's computer by disclosing "w herein stored client information stored 
in the client is selectively accessible based on subscription information." The Examiner further 
alleges that Kraenzel discloses downloading said service through said second communication 
port so that it is received by said confined run time environment through his teaching "wherein 
the user interface downloads file sets representing services to a client." Finally, the Examiner 
finds that Kraenzel discloses executing said service within said confined run time environment 
whereby said service is given restricted access to said at least one profile file by teaching 
"wherein the client renders the downloaded files by executing the services downloaded." 

Applicants respectfully disagree and traverse every single one of the Examiner's 
contentions. At the outset. Applicants note that Kraenzel does not in fact even obliquely mention, 
hint, or allude to the use of confined run time environments for the Lotus iNotes applications 
used in his system. The use of confined run time environments such as the so-called "sandboxes" 
of the Java programming language are well known to those of skill in the art, and are also 
discussed in the specification at page 8 11. 14-34. Applicants have reviewed the entire, rather 
voluminous, Kraenzel reference and have not found a single mention of executing the 
downloaded iNotes applications in anything remotely resembling a confined run time 
environment. It is true that BCraenzel does teach the use of the well-known SSL encryption mode. 
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but the Examiner's interpretation of this as disclosing the execution of the downloaded 
application in a confined run time environment is simply incorrect and not supported by any part 
of Kraenzel or the general knowledge in the art. SSL encryption mode is a communication 
encryption mode, and thus it is understood as referring to the downloading of an application, not 
its execution once it has been downloaded. Thus, whereas the Examiner's characterization of 
BCraenzel as teaching that "wherein a Service Manager user Interface is used with Domino 
Offline Services to provide a platform for services and application processes from server to run 
in a client, communication established through a secure socket layer that assigns specific secure 
sockets to communication to load from database to client browser" is correct, this does not in 
fact anticipate the claimed arranging a confined run time environment which is assigned a second 
communication port and socket. At best, it teaches that the user's web browser opens a second 
socket - a secure socket (SSL). 

In fact, Kraenzel himself teaches against the claimed approach in one of the very portions 
cited by the Examiner (at col. 33 I. 64 - col. 34 I. 19), which recites in part: 

When download control element plug in or ActiveX 234 activates in 
download page 230, it initiates the download process, which includes, first, 
establishing a security context. In effect, the user is asked "do you trust this 
site?"Based on whether transfer 308 was secure or insecure, the user is advised 

whether identity of the server site can be established. After first determining whether 
the site can be trusted, and whether or not that can be confirmed, the user is then 
asked if the processing should be permitted to continue including installation of 
programs on the cUent machine 100. 

In case of secure connection, the risk level accepted by the user is to trust or 
not trust a known entity to run programs on client machine 100. In the instance of 
an insecure connection, the user, if processing is allowed to continue, is in 
effect trusting a weakly confirmed entity to run programs on client machine 
100, and this is typically done only inside an intranet. 

The above clearly divulges that the only control applied to the execution of the 
downloaded applications is enforced prior to initiation of the download by simply asking the user 
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for permission to proceed with the download. Once the download has been authorized by the 
user, the application downloads and then executes on the client machine . There is no mention of 
a confined run time imposed upon this executable whatsoever. Should the Examiner continue to 
insist that Kraenzel teaches the execution of a downloaded application in a confined run time 
environment, Applicants respectfully request him to clearly and specifically point out where 
BCraenzel discloses this feature in accordance with 37 C.F.R. 1.104(c)2. 

Applicants further respectfully disagree that Kraenzel teaches "wherein stored client 
information stored in the client is selectively accessible based on subscription information." The 
Examiner cites to col. 12 1. 66 - col. 131. 16 and col. 13 11. 27-35 as supporting this proposition. 
This text is reproduced below: 

Client 200 includes directories <pdir>/ <data>/ <namespace> 204 into 
which subscription user identifier 206 is stored, subscription ACLs 203, and file 
director}' <pdir>/ <data>/ 208 into which local services ID 210 is stored; databases 
local names. nsf 212, local mailbox 214, and password.db 216; service manager 218, 
including synchronization task 220, HTTP 222, index 224, agent 226 and custom 
228; browser 244, including download page 230 and application page 244; 
subscription Hnks desktop 252, start menu 256, driver tray 258 and uninstall 246. 
Download page 230 includes parameters from configuration document 232 (which is 
the client side 200 rendition of offline configuration document 138), download 
element 234 (the cUent side rendition of download control 146 for ActiveX or plug 
in, as the case may be). Application page 238 includes Java script status 240 including 
client side rendition 241 of web control plug in or ActiveX 133 and the client side 
rendition 242 of time zone Java script 134. 

Lotus iNotes Sync Manager represents an exemplary embodiment of service 
manager 218. Users automatically install Lotus iNotes Sync Manager 218 on local 
machine 200 when they download a Domino appUcation enabled for offline use, or 
install a CD prepared in accordance with the present invention. iNotes Sync Manager 
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21 8, the end-user component of Domino Off-line Services, enables the user to 
manage and maintain offline subscriptions 202 to Domino Web applications. 

Applicants can discern nothing in the above that discusses information stored in the client 
that is selectively accessible, based on subscription information or on anything else. Once again, 
Applicants have perused the entire Kraenzel reference, but have failed to uncover any discussion 
of providing selective access to any information stored on the client machine. As discussed 
above, once an application is allowed to download by the user, it is given free reign to install and 
execute on the client machine with no further restrictions. Applicants thus traverse the 
Examiner's assertion that Kraenzel anticipates the claimed confined run time environment 
provided with restricted access to at least one profile file located on the user's computer because 
Kraenzel teaches neither the confined run time environment nor restricted access to a profile file 
on the user's computer, and once again respectfiiUy request that he withdraw this objection or 
else clearly and specifically point out where Kraenzel discloses this feature in accordance with 
37 C.F.R. 1.104(c)2. 

In light of the above discussion. Applicants fiirther submit that Kraenzel also clearly 
cannot disclose the claimed downloading said service through said second communication port 
so that it is received by said confined run time environment because, again, there is no confined 
run time environment used by Kraenzel. The Examiner's explanation that Kraenzel teaches 

"wherein the user interface downloads file sets representing services to a client" essentially has 
no relevance, at least insofar as a confined run time environment is involved. 

For the very same reason, Applicants fiirther submit that Kraenzel also does not teach 
executing said service within said confined run time environment whereby said service is given 
restricted access to said at least one profile file. Once again, the Examiner's contention that 
Kraenzel anticipated this feature by teaching "wherein the client renders the downloaded files by 
executing the services downloaded" completely ignores the lack of a confined run time 
environment nor of restricting access to user information in the teachings of Kraenzel. 

In view of the above. Applicants submit that Kraenzel and the presently claimed 
inventions are patentably distinct and respectfiiUy request the Examiner to kindly reconsider and 
pass claims 1 and 16 to issue. 
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Claims 2, 3, 12, 13 and 15 depend from claim 1. In view of the above discussion, it is 
submitted that claim 1 is allowable, and for this reason claims 2, 3, 12, 13 and 15 are also 
allowable at least by virtue of their dependency on claim 1. 

Rejection under 35 U.S.C §103 

Claim 12 stands rejected under 35 U.S.C. 103(a) as being unpatentable over Kraenzel in 
view of U.S. Pub. No. 2001/0045451 to Tan. Claim 12 depends from claim 1. "If an independent 
claim is nonobvious under 35 U.S.C. 103, then any claim depending therefrom is nonobvious." 
In re Fine, 837 F.2d 1071, 5 USPQ2d 1596 (Fed. Cir. 1988). Therefore, in light of the above 
discussion of claim 1, Applicants submit that claim 12 is also allowable at least by virtue of its 
dependency. 



In view of the above, Applicants submit that the application is now in condition for 
allowance and respectfiiUy urge the Examiner to pass this case to issue. 
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The Commissioner is authorized to charge any additional fees which may be required or 
credit overpayment to deposit account no. 08-2025. In particular, if this response is not timely 
filed, the Commissioner is authorized to treat this response as including a petition to extend the 
time period pursuant to 37 CFR 1.136(a) requesting an extension of time of the number of 
months necessary to make this response timely filed and the petition fee due in connection 
therewith may be charged to deposit account no. 08-2025. 

Respectfully submitted, 
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